Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/rwqUlqSrxa46vNd62WyltXvl25E.roa
File: rwqUlqSrxa46vNd62WyltXvl25E.roa (raw, json)
Hash identifier: c98eVktuHPjYqnwj3faGisWitd7HTdM4r5+4vJV7eZs=
Subject key identifier: AF:0A:94:96:A4:AB:C5:AE:3A:BC:D7:7A:D9:6C:A5:B5:7B:E5:DB:91
Certificate issuer: /CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Certificate serial: 018C15A4F64541D21948FF4DB5DB232AFC24
Authority key identifier: B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/rwqUlqSrxa46vNd62WyltXvl25E.roa
Signing time: Tue 28 Nov 2023 11:16:21 +0000
ROA not before: Tue 28 Nov 2023 11:16:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199669
IP address blocks: 2a11:f187::/32 maxlen: 32
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:30:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:15:a4:f6:45:41:d2:19:48:ff:4d:b5:db:23:2a:fc:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f619ef200840dfa8fd43567c7a978c15312d7f
Validity
Not Before: Nov 28 11:16:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af0a9496a4abc5ae3abcd77ad96ca5b57be5db91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ba:e7:63:40:71:53:eb:c9:ee:c0:b8:a7:93:
1c:52:97:06:0d:a7:b0:cc:6c:03:fa:6f:e8:9c:fd:
d1:09:62:b5:ed:4f:04:78:c8:89:bb:ca:56:92:03:
eb:cd:81:4b:38:f0:31:37:35:06:88:04:60:a2:bf:
6e:7a:20:9b:fb:f4:ae:57:19:a6:02:87:14:64:b3:
b0:40:67:46:34:4f:c4:7a:30:d5:fc:8d:4f:87:97:
82:dc:7c:82:87:84:1f:69:5e:4e:e2:b1:80:55:e8:
98:9f:db:27:87:7c:e4:a6:d7:30:23:5a:dc:80:41:
4c:b9:a6:40:a3:d3:f0:d7:29:c3:91:0c:90:9b:55:
c5:a5:ee:5d:08:ed:24:f8:56:5c:75:07:f3:03:f1:
a2:2c:0d:ac:7e:49:8d:46:9e:bf:c7:44:c6:48:33:
ae:34:99:22:ff:18:fc:b5:14:e8:08:3b:08:0f:92:
9e:e5:d1:0f:7c:5e:81:c2:f8:d1:38:3d:08:1f:5c:
97:6b:0c:d4:09:f6:3f:69:c3:04:9f:7c:ce:64:7e:
f5:94:43:44:45:eb:e8:0f:26:eb:be:71:e7:c3:c7:
77:a4:74:16:fe:38:16:0c:08:c0:3e:2c:2f:8e:9d:
8c:89:4c:77:e0:0a:50:4c:be:a4:b0:e7:1e:23:1b:
b8:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:0A:94:96:A4:AB:C5:AE:3A:BC:D7:7A:D9:6C:A5:B5:7B:E5:DB:91
X509v3 Authority Key Identifier:
keyid:B0:F6:19:EF:20:08:40:DF:A8:FD:43:56:7C:7A:97:8C:15:31:2D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/rwqUlqSrxa46vNd62WyltXvl25E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/0e18d2-d80b-4aa0-aaef-069661675106/1/sPYZ7yAIQN-o_UNWfHqXjBUxLX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a11:f187::/32
Signature Algorithm: sha256WithRSAEncryption
1e:37:b8:17:15:33:9a:4d:93:fa:a7:42:d1:21:66:2f:58:f7:
9b:ef:ba:8f:2e:69:61:da:b5:e6:2f:af:95:e7:49:18:69:41:
c2:14:81:40:de:6e:55:2a:c3:9f:63:be:df:05:2c:6a:04:09:
b8:35:40:4f:f5:a0:79:5a:04:f2:a9:45:3e:eb:fe:17:4c:28:
75:13:93:e1:ba:35:e9:57:e1:09:b6:62:da:86:44:c5:9e:7f:
59:e0:dc:9b:00:98:b5:7c:df:3e:8d:5d:65:ee:ec:4c:32:32:
c5:a4:ff:13:45:fa:45:d9:98:a5:a2:19:d6:3f:82:7d:ff:dc:
a0:d2:48:af:0f:39:8a:69:03:51:8a:87:a8:a4:5a:48:03:ff:
71:2c:cb:b3:03:f5:19:4b:e7:e7:97:7a:34:8d:76:d4:73:15:
9b:46:8c:08:bd:78:38:55:c2:fa:14:e8:e7:28:e1:ff:86:1b:
1e:39:10:59:7e:c4:68:99:b1:a9:f8:66:31:1d:2c:a4:53:5f:
ca:07:9e:c5:62:7b:96:0d:76:dd:8b:52:d9:77:4d:46:cb:ef:
aa:be:97:82:ee:af:75:14:7b:86:a3:75:3b:58:4d:b3:db:58:
72:c4:80:d0:14:3a:25:31:1b:13:71:e2:f9:e6:69:3c:2c:20:
ad:ff:ff:bf
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYwVpPZFQdIZSP9NtdsjKvwkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwZjYxOWVmMjAwODQwZGZhOGZkNDM1NjdjN2E5NzhjMTUz
MTJkN2YwHhcNMjMxMTI4MTExNjIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZjBhOTQ5NmE0YWJjNWFlM2FiY2Q3N2FkOTZjYTViNTdiZTVkYjkxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhbrnY0BxU+vJ7sC4p5McUpcGDaew
zGwD+m/onP3RCWK17U8EeMiJu8pWkgPrzYFLOPAxNzUGiARgor9ueiCb+/SuVxmm
AocUZLOwQGdGNE/EejDV/I1Ph5eC3HyCh4QfaV5O4rGAVeiYn9snh3zkptcwI1rc
gEFMuaZAo9Pw1ynDkQyQm1XFpe5dCO0k+FZcdQfzA/GiLA2sfkmNRp6/x0TGSDOu
NJki/xj8tRToCDsID5Ke5dEPfF6BwvjROD0IH1yXawzUCfY/acMEn3zOZH71lENE
RevoDybrvnHnw8d3pHQW/jgWDAjAPiwvjp2MiUx34ApQTL6ksOceIxu4OwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFK8KlJakq8WuOrzXetlspbV75duRMB8GA1UdIwQY
MBaAFLD2Ge8gCEDfqP1DVnx6l4wVMS1/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYt
MDY5NjYxNjc1MTA2LzEvcndxVWxxU3J4YTQ2dk5kNjJXeWx0WHZsMjVFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yi8wZTE4ZDItZDgwYi00YWEwLWFhZWYtMDY5NjYxNjc1MTA2
LzEvc1BZWjd5QUlRTi1vX1VOV2ZIcVhqQlV4TFg4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAKhHxhzAN
BgkqhkiG9w0BAQsFAAOCAQEAHje4FxUzmk2T+qdC0SFmL1j3m++6jy5pYdq15i+v
ledJGGlBwhSBQN5uVSrDn2O+3wUsagQJuDVAT/WgeVoE8qlFPuv+F0wodROT4bo1
6VfhCbZi2oZExZ5/WeDcmwCYtXzfPo1dZe7sTDIyxaT/E0X6RdmYpaIZ1j+Cff/c
oNJIrw85imkDUYqHqKRaSAP/cSzLswP1GUvn55d6NI121HMVm0aMCL14OFXC+hTo
5yjh/4YbHjkQWX7EaJmxqfhmMR0spFNfygeexWJ7lg123YtS2XdNRsvvqr6Xgu6v
dRR7hqN1O1hNs9tYcsSA0BQ6JTEbE3Hi+eZpPCwgrf//vw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:18 2024 by rpki-client on console-ams.rpki-client.org